Does Moss comply with the GDPR?

What is the GDPR?

The General Data Protection Regulation (GDPR) is the European privacy law that went into effect on May 25, 2018.

Does the GDPR affect you?

It applies to all entities and individuals based in the EU, in addition to all entities and individuals, whether or not based in the EU, that process personal data of EU individuals.

So most likely, yes - you must comply with the GDPR. Think of this as an opportunity to improve personal data protection for your users 😊

What do you have to do to comply with the GDPR?

Ask a lawyer 😅. One of the things you'll be told is to make sure that all vendors you use to process EU personal data have also implemented privacy and security protections. And that's where Moss comes in.

What have we done to comply with the GDPR?

We've always cared about the security and privacy of your data - in addition to keep doing that, we have:

Put in place the required features and processes to allow you to exercise your rights under the GDPR. Please send your request to privacy@moss.sh.

Offered our customers a Data Processing Agreement (DPA) to help them comply with the GDPR. Send an email to privacy@moss.sh telling us your name, title, and company name, and we'll send you a signed DPA.

Made sure all our vendors, sub-processors, staff or any other third party that might process personal data have the appropriate data protection and security measures in place.